Progress0 / 12
Environment structure
1. We have separate, repeatable dev / staging / production environments.
Environment structure
2. Infrastructure is defined as code (Terraform, CDK, Bicep, ARM).
Environment structure
3. We can recreate an environment from scratch in under a day.
Monitoring & alerting
4. We have meaningful alerts on user-impacting symptoms (not just CPU).
Monitoring & alerting
5. On-call knows what to do for every alert that pages.
Recovery & resilience
6. We have tested our backup restore in the last 6 months.
Recovery & resilience
7. We have a documented RTO/RPO that the business agrees with.
Cost & scaling
8. We can attribute cost to product areas or customers.
Cost & scaling
9. We know which workloads will become expensive at 3–5x scale.
Security & access
10. Human access is via SSO with MFA — no shared admin accounts.
Security & access
11. Secrets are stored in a managed secret store (not env files in repos).
Security & access